-
Run
letsencrypt-setup.shonce. -
Set up a cron job to renew the cert:
sudo EDITOR=nano crontab -e- This will open an editor, and paste the following in:
0 4 1 */3 * sudo certbot -q renewand hit ctrl+o to save it
- Done!
Created
February 25, 2021 13:17
-
-
Save joshuaquek/8f8841d78de8fb6fd40346c010b42c1a to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Summary: Configuring OpenVPN AS to use LetsEncrypt |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # Install LetsEncrypt Certbot and symlink it | |
| sudo snap install core; sudo snap refresh core | |
| sudo snap install --classic certbot | |
| sudo ln -s /snap/bin/certbot /usr/bin/certbot | |
| DOMAIN="mydomainnamehere.test.com" | |
| set -eu | |
| sudo service openvpnas stop | |
| sudo certbot certonly --standalone --agree-tos --non-interactive \ | |
| --email [email protected] \ | |
| --domains $DOMAIN \ | |
| --pre-hook 'sudo service openvpnas stop' \ | |
| --post-hook 'sudo service openvpnas start' | |
| sudo ln -s -f /etc/letsencrypt/live/$DOMAIN/cert.pem /usr/local/openvpn_as/etc/web-ssl/server.crt | |
| sudo ln -s -f /etc/letsencrypt/live/$DOMAIN/privkey.pem /usr/local/openvpn_as/etc/web-ssl/server.key | |
| sudo service openvpnas start | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment